CVE-2026-27946 | Zitadel up to 3.4.6/4.10.x authorization (GHSA-282g-fhmx-xf54)

Inserito da Angelo Barbosa | Feb 26, 2026 | CVE

A vulnerability identified as problematic has been detected in Zitadel up to 3.4.6/4.10.x. The impacted element is an unknown function. Performing a manipulation results in missing authorization.

This vulnerability is reported as CVE-2026-27946. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-27946 | Zitadel up to 3.4.6/4.10.x authorization (GHSA-282g-fhmx-xf54)

Post correlati

CVE-2020-26306 | benhmoore Knwl up to 1.0.2 redos (ID 106)

CVE-2023-51965 | Tenda AX1803 1.0.0.1 setIptvInfo stbpvid stack-based overflow

CVE-2024-20263 | Cisco 250 Series Smart Switch ACL access control (cisco-sa-sb-bus-acl-bypass-5zn9hNJk)

CVE-2025-11922 | Inactive Logout Plugin up to 3.5.5 on WordPress ina_redirect_page_individual_user cross site scripting